CN103200159B - A kind of Network Access Method and equipment - Google Patents
A kind of Network Access Method and equipment Download PDFInfo
- Publication number
- CN103200159B CN103200159B CN201210004821.3A CN201210004821A CN103200159B CN 103200159 B CN103200159 B CN 103200159B CN 201210004821 A CN201210004821 A CN 201210004821A CN 103200159 B CN103200159 B CN 103200159B
- Authority
- CN
- China
- Prior art keywords
- cookie
- terminal
- processing apparatus
- message processing
- portal server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The invention discloses a kind of Network Access Method and equipment, the method includes: terminal is sent to message processing apparatus by more newly requested for cookie, described message processing apparatus be sent to Portal server by more newly requested for described cookie;Cookie information corresponding for described terminal is sent to described message processing apparatus by described Portal server, described message processing apparatus described cookie information is sent to described terminal;Described terminal sends the HTTP request carrying described cookie information to described Portal server, described Portal server utilize described cookie information to control described terminal access network。In the embodiment of the present invention, by the cookie information of short message way more new terminal, thus realizing when terminal accesses network by WLAN automatically accessing authentication function, it is to avoid user's manual authentication and repeat certification, improve the experience of user;And simplify terminal WLAN access authentication procedure, improve network authentication efficiency。
Description
Technical field
The present invention relates to communication technical field, particularly relate to a kind of Network Access Method and equipment。
Background technology
In prior art, terminal can access network (i.e. internet) on the basis by WLAN (WirelessLocalAreaNetworks, WLAN) certification;As shown in Figure 1, WLAN authentication architecture schematic diagram for sing on web mode, in WLAN verification process, by AC (AccessController, access controller) equipment, Portal (door) server and RADIUS (RemoteAuthenticationDialInUserService, remote customer dialing authentication service) server complete the access authentication to validated user and control jointly;Wherein, AC equipment is as accessing the judgement mark controlled with IP (InternetProtocol, Internet protocol)/MAC (MediaAccessControl, medium access control) address。
As in figure 2 it is shown, be the WLAN identifying procedure schematic diagram of sing on web mode, comprise the following steps:
Step 1, terminal (i.e. WLAN terminal) and AP (AccessPoint, access points) after equipment sets up physical connection, AC equipment is terminal distribution IP address by DHCP (DynamicHostConfigurationProtocol, DynamicHost arranges agreement) agreement。
Step 2, terminal initiate HTTP (HyperTextTransferProtocol, HTML (Hypertext Markup Language)) request (i.e. HTTP service request)。
Step 3, AC equipment intercept and capture HTTP request;Owing to terminal did not authenticate, therefore HTTP request is forced to Portal server, and in the URL (UniformResourceLocator, URL) of HTTP request, adds relevant parameter。
Step 4, Portal server push WEB certification page to terminal。
Step 5, user insert the identity information such as user name, password on WEB certification page, and are submitted it on Portal server by terminal。
Step 6-step 10, based on CHAP (ChallengeHandshakeAuthenticationProtocol, inquire Challenge-Handshake Authentication Protocol) flow process, Portal server, between AC equipment and radius server, carry out WLAN verification process。
Step 11, AC equipment preserve IP/MAC address and the MSISDN (MobileSubscriberInternationalISDNNumber of terminal, mobile subscriber's International Integrated Services digital network number) mapping table, and return authentication result (carrying MSISDN) and related service attribute are to Portal server。
Step 12, Portal server are according to authentication result, pushing certification results page;If it succeeds, push portal page to terminal;If authentification failure, then return error message。
Step 13, Portal server are responded AC equipment and are received authentication result message, and start charging flow。
In the process realizing the present invention, inventor have found that in prior art and at least there is problems in that
WLAN verification process is completed jointly by AC equipment, Portal server and radius server, when each terminal requires over WLAN access network, input identity information (such as information such as username and passwords) is all needed to carry out WLAN certification, thus have impact on the experience of user。
Summary of the invention
The embodiment of the present invention provides a kind of Network Access Method and equipment, to improve the experience of user。
In order to achieve the above object, the embodiment of the present invention provides a kind of Network Access Method, including:
Terminal is sent to message processing apparatus by more newly requested for cookie, described message processing apparatus be sent to Portal server by more newly requested for described cookie;
Cookie information corresponding for described terminal is sent to described message processing apparatus by described Portal server, described message processing apparatus described cookie information is sent to described terminal;
Described terminal sends the HTTP request carrying described cookie information to described Portal server, described Portal server utilize described cookie information to control described terminal access network。
The embodiment of the present invention provides a kind of network access system, at least includes terminal, message processing apparatus and Portal server;Wherein,
Described terminal, for being sent to described message processing apparatus by more newly requested for cookie, and receives from cookie information corresponding to the described terminal of described message processing apparatus, and sends the HTTP request carrying described cookie information to described Portal server;
Described message processing apparatus, more newly requested for the cookie received from described terminal, and it is sent to described Portal server by more newly requested for described cookie;And, receive the described cookie information from described Portal server, and described cookie information is sent to described terminal;
Described Portal server, more newly requested for the cookie received from described message processing apparatus, and cookie information corresponding for described terminal is sent to described message processing apparatus;And, receive the HTTP request carrying described cookie information from described terminal, and utilize described cookie information to control described terminal access network。
The embodiment of the present invention provides a kind of terminal unit, including:
First sending module, for being sent to message processing apparatus by more newly requested for cookie, is sent to Portal server by described message processing apparatus by more newly requested for described cookie;
Receiver module, the cookie information corresponding for receiving described terminal that described Portal server returned by described message processing apparatus;
Second sending module, for sending the HTTP request carrying described cookie information to described Portal server, is utilized described cookie information to control described terminal access network by described Portal server。
The embodiment of the present invention provides a kind of Portal server, including:
First receiver module, more newly requested for receiving the cookie that terminal sent by message processing apparatus;
Sending module, for cookie information corresponding for described terminal is sent to described message processing apparatus, is sent to described terminal by described message processing apparatus by described cookie information;
Second receiver module, for receiving the HTTP request carrying described cookie information that described terminal sends;
Control module, be used for utilizing described cookie information to control described terminal access network。
Compared with prior art, the embodiment of the present invention at least has the advantage that the cookie information by short message way more new terminal, thus realizing when terminal accesses network by WLAN automatically accessing authentication function, it is to avoid user's manual authentication and repeat certification, improve the experience of user;And simplify terminal WLAN access authentication procedure, improve network authentication efficiency。
Accompanying drawing explanation
In order to be illustrated more clearly that technical scheme, below the accompanying drawing used required during embodiment is described is briefly described, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the premise not paying creative work, it is also possible to obtain other accompanying drawing according to these accompanying drawings。
Fig. 1 is the WLAN authentication architecture schematic diagram of sing on web mode in prior art;
Fig. 2 is the WLAN identifying procedure schematic diagram of sing on web mode in prior art;
Fig. 3 is that in the embodiment of the present invention, terminal is when first passage WLAN accesses network, and the processing procedure schematic diagram of cookie is encrypted in write;
Fig. 4 is that in the embodiment of the present invention, terminal, within the authentication-exempt cycle, accesses processing procedure schematic diagram during network by WLAN;
Fig. 5 is the application scenarios schematic diagram that the embodiment of the present invention one provides;
Fig. 6 is a kind of Network Access Method schematic flow sheet that the embodiment of the present invention one provides;
Fig. 7 is the structural representation of a kind of terminal unit that the embodiment of the present invention three provides;
Fig. 8 is the structural representation of a kind of Portal server that the embodiment of the present invention four provides。
Detailed description of the invention
Inventor note that to solve to access the problem that network all needs input identity information to carry out WLAN certification every time in the process realize the present invention, the regular authentication-exempt mechanism based on cookie can be adopted, make user only need to input an identity information in some cycles。In WLAN verification process, realize process based on the regular authentication-exempt mechanism of cookie and include: terminal when first passage WLAN accesses network, the processing procedure of write encryption cookie;And, terminal, within the authentication-exempt cycle, accesses processing procedure during network by WLAN。
As it is shown on figure 3, be terminal when first passage WLAN accesses network, the processing procedure schematic diagram of write encryption cookie, comprise the following steps:
Step 1, terminal are after associated AP equipment, and AC equipment is this terminal distribution IP address by DHCP protocol。
Step 2, terminal initiate HTTP request。
Step 3, AC equipment intercept and capture HTTP request;Owing to terminal did not authenticate, therefore HTTP request is forced to Portal server, and in the URL of HTTP request, adds relevant parameter。
Step 4, Portal server push WEB certification page to terminal, and this WEB certification page provides regular automated validation option。
Step 5, user insert the identity information such as user name, password on WEB certification page, and select regular automated validation option, and are submitted it on Portal server by terminal。
After step 6, Portal server receive user profile, it is judged that terminal this log in whether select regular automated validation service;If it is, extract this turn up service time, effect duration information;And when sending user profile inquiry request to radius server, carry this this turn up service time, effect duration information。
Step 7, the radius server checking information such as user name, password, if authentication failed, returns failure information to terminal by Portal server, and flow process so far terminates;If be proved to be successful, then searching user's information, and return static password corresponding to Query Result, this terminal to Portal server, the single of system configuration connects the information such as set meal residual time length (AvailableTime) of maximum duration (SessionTimeout), cellphone subscriber and card user。
Step 8-step 12, based on CHAP flow process, Portal server, between AC equipment and radius server, carry out WLAN verification process。
Wherein, the password of terminal adopts the static password of radius server feedback;If certification success, then terminal is classified as regular automated validation user by radius server, turn up service time and the effect duration of record terminal (it should be noted that, if opening automated validation service before this terminal, turn up service time before radius server this terminal saved, effect duration information, therefore can automatically with this new turn up service time, effect duration information substitution old turn up service time, effect duration information);If certification is unsuccessful, then radius server abandons this information (it should be noted that radius server safeguards regular automated validation user profile)。
Step 13, AC equipment return authentication result are to Portal server。
Step 14, Portal server are according to authentication result, pushing certification results page;If it succeeds, push portal page to terminal;And Portal server is used for recording user name, this turn up service time, effect duration information etc. to terminal write encryption cookie, this encryption cookie, starts reverse countdown simultaneously and remind;If authentification failure, then return error message。
Step 15, Portal server are responded AC equipment and are received authentication result message;If authentification failure, then flow process leaves it at that。
Step 16, step 17, if certification success, start follow-up charging flow。
As shown in Figure 4, for terminal within the authentication-exempt cycle, access processing procedure schematic diagram during network by WLAN, comprise the following steps:
Step 1, terminal are after associated AP equipment, and AC equipment is this terminal distribution IP address by DHCP protocol。
Step 2, terminal initiate HTTP request。
Step 3, AC equipment intercept and capture HTTP request;Owing to terminal did not authenticate, therefore HTTP request is forced to Portal server, and in the URL of HTTP request, adds relevant parameter。
It should be noted that owing to being within the authentication-exempt cycle, therefore terminal also safeguards there is encryption cookie information, and in the HTTP request again initiated of terminal, needs carry encryption cookie information, Portal server read out user profile, and determine and no longer carry out WLAN certification。
Step 4, in the userinfo-request (user information request) that Portal server is initiated to radius server, pwd is empty, and carried terminal turn up service time, effect duration information;Now, the value (3) of passtype (password type) represents that this terminal is regular automated validation user。
Step 5, radius server judge that this terminal is regular automated validation user, and by the terminal turn up service time of Portal server transmission, effect duration information, compare with the terminal turn up service time of radius server this locality preservation, effect duration information, the legitimacy of checking terminal;If be proved to be successful, then radius server returns static password corresponding to Query Result, this terminal to Portal server, the single of system configuration connects the information such as set meal residual time length (AvailableTime) of maximum duration (SessionTimeout), cellphone subscriber and card user;Otherwise, radius server returns failure information to Portal server, Portal server push WEB page to terminal and carry out usemame/password certification。
Step 6-step 15, follow-up flow process complete the related procedure such as subscription authentication, charging, do not repeat them here。
In WLAN verification process, above-mentioned employing is based on, in the regular authentication-exempt mechanism of cookie, making user only need to input an identity information, improve the experience of user in some cycles。It is contemplated that after the authentication-exempt cycle, such scheme remains a need for user and inputs identity information and realize WLAN verification process, therefore the embodiment of the present invention provides a kind of Network Access Method, cookie information by short message way more new terminal, thus realizing when terminal accesses network by WLAN automatically accessing authentication function, avoid user's manual authentication and repeat certification, improving the experience of user;And simplify terminal WLAN access authentication procedure, improve network authentication efficiency。
Below in conjunction with the accompanying drawing in the present invention, the technical scheme in the present invention is clearly and completely described, it is clear that described embodiment is only a part of embodiment of the present invention, rather than whole embodiments。Based on the embodiment in the present invention, the every other embodiment that those of ordinary skill in the art obtain under not making creative work premise, broadly fall into the scope of protection of the invention。
Embodiment one
The embodiment of the present invention one provides a kind of Network Access Method, with Fig. 5 for embodiment of the present invention application scenarios schematic diagram, the method is applied to include terminal, AP equipment, AC equipment, MSC (MobileSwitchingCenter, mobile switching centre), message processing apparatus, Portal server and radius server system in, as shown in Figure 6, the method comprises the following steps:
Step 1-step 2, terminal are after associated AP equipment (namely terminal and AP equipment set up physical connection), and AC equipment is this terminal distribution IP address by DHCP protocol。
Step 3, terminal (by using customization customer end to realize) are sent to message processing apparatus by more newly requested for cookie。Wherein, message processing apparatus can be sms center (or Short Message Service Gateway);Based on this, terminal is sent to sms center (or Short Message Service Gateway) in short message (such as note) mode by more newly requested for cookie。
In the embodiment of the present invention, terminal is sent to message processing apparatus includes more newly requested for cookie: terminal monitoring is currently used in the cookie situation accessing network, and before the cookie being currently used in access network expires, it is sent to message processing apparatus by more newly requested for cookie。Access in the flow process of network at the terminal first passage WLAN shown in Fig. 3, Portal server can to terminal write encryption cookie (being namely currently used in the cookie accessing network), this encryption cookie is used for recording user name, this turn up service time, effect duration information etc., starts reverse countdown simultaneously and reminds;Based on this, before the embodiment of the present invention can expire being currently used in the cookie accessing network, it is sent to message processing apparatus by more newly requested for cookie。
It should be noted that cookie refers to the service provider data (generally going through encryption) in order to distinguish user identity, carry out session (session) tracking and be stored on user local terminal;Cookie is generated by server end (i.e. service provider), and it is sent to User-Agent (being usually browser), by browser, the key/value of cookie is saved in the text under certain catalogue, ask next time just to send this cookie to server during same website, make server it is known that this user whether validated user, and the need of login again etc.。
Further, terminal is in the process being sent to message processing apparatus that cookie is more newly requested, first terminal initiates SIM (SubscriberIdentityModule to MSC, user identification module) identifying procedure, complete HLR (HomeLocationRegister, attaching position register) authentication process;Afterwards, terminal is sent to message processing apparatus by more newly requested for cookie。
Step 4, message processing apparatus are sent to Portal server by more newly requested for cookie。
Cookie information (cookie after namely updating) corresponding for terminal is sent (can pass through response more newly requested for cookie to send) to message processing apparatus by step 5, Portal server。
Cookie information (cookie after renewal) is sent to terminal by step 6, message processing apparatus;Wherein, message processing apparatus can be sms center (or Short Message Service Gateway);Based on this, cookie information is sent to terminal in short message (such as note) mode by sms center (or Short Message Service Gateway)。
Step 7-step 8, terminal send the HTTP request (i.e. HTTP service request) carrying cookie information (it is the cookie information of encryption) by AC equipment to Portal server, Portal server utilize cookie information to control terminal access network。
Concrete, Portal server utilizes cookie information control terminal access network to include: Portal server is after receiving HTTP request, and from HTTP request, deciphering reads user profile, and obtains cookie information from HTTP request;Afterwards, by cookie information, Portal server determines that terminal does not carry out WLAN certification, it is possible to access network either directly through WLAN;This process specifically can be realized by the processing procedure of following steps 9-step 20。
Step 9-step 20, in the userinfo-request that Portal server is initiated to radius server, pwd is empty, and carried terminal turn up service time, effect duration information;Now, the value (3) of passtype represents that this terminal is regular automated validation user。
Radius server judges that this terminal is regular automated validation user, and by the terminal turn up service time of Portal server transmission, effect duration information, compare with the terminal turn up service time of radius server this locality preservation, effect duration information, the legitimacy of checking terminal;If be proved to be successful, then radius server returns static password corresponding to Query Result, this terminal to Portal server, the single of system configuration connects the information such as set meal residual time length (AvailableTime) of maximum duration (SessionTimeout), cellphone subscriber and card user;Otherwise, radius server returns failure information to Portal server, Portal server push WEB page to terminal and carry out usemame/password certification。
AC equipment preserves the IP address of this terminal, MAC Address and MSISDN corresponding relation;Initiating accounting request to radius server, notify that the client software of terminal starts clocking capability simultaneously, terminal can access internet by WLAN。
In sum, in the embodiment of the present invention, before current cookie information expires, cookie information by short message way more new terminal, and automatically initiate HTTP request (wherein carrying the encryption cookie information after renewal), user profile is read by Portal server, it is achieved automated log on after being deciphered;Thus realizing when terminal accesses network by WLAN automatically accessing authentication function, it is to avoid user's manual authentication and repeat certification, improve the experience of user;And simplify terminal WLAN access authentication procedure, improve network authentication efficiency。
Embodiment two
Based on the inventive concept same with said method, the embodiment of the present invention two provides a kind of network access system, at least includes terminal, message processing apparatus and Portal server;Wherein,
Described terminal, for being sent to described message processing apparatus by more newly requested for cookie, and receives from cookie information corresponding to the described terminal of described message processing apparatus, and sends the HTTP request carrying described cookie information to described Portal server;
Described message processing apparatus, more newly requested for the cookie received from described terminal, and it is sent to described Portal server by more newly requested for described cookie;And, receive the described cookie information from described Portal server, and described cookie information is sent to described terminal;
Described Portal server, more newly requested for the cookie received from described message processing apparatus, and cookie information corresponding for described terminal is sent to described message processing apparatus;And, receive the HTTP request carrying described cookie information from described terminal, and utilize described cookie information to control described terminal access network。
Described terminal, is further used for monitoring the cookie situation accessing network that is currently used in, and before the cookie being currently used in access network expires, is sent to described message processing apparatus by more newly requested for described cookie。
Described Portal server, is further used for after receiving described HTTP request, obtains described cookie information, and determine that described terminal does not carry out WLAN certification by described cookie information from described HTTP request, accesses network either directly through WLAN。
Embodiment three
Based on the inventive concept same with said method, the embodiment of the present invention three provides a kind of terminal unit, as it is shown in fig. 7, this terminal unit includes:
First sending module 11, for being sent to message processing apparatus by more newly requested for cookie, is sent to Portal server by described message processing apparatus by more newly requested for described cookie;
Receiver module 12, the cookie information corresponding for receiving described terminal that described Portal server returned by described message processing apparatus;
Second sending module 13, for sending the HTTP request carrying described cookie information to described Portal server, is utilized described cookie information to control described terminal access network by described Portal server。
Described first sending module 11, is currently used in the cookie situation accessing network, and before the cookie being currently used in access network expires, is sent to described message processing apparatus by more newly requested for described cookie specifically for monitoring。
Described message processing apparatus includes sms center;
Described first sending module 11, specifically for being sent to described sms center with short message way by more newly requested for described cookie;
Described receiver module 12, specifically for receiving the cookie information that described sms center returns with short message way。
Wherein, the modules of apparatus of the present invention can be integrated in one, it is also possible to separates and disposes。Above-mentioned module can merge into a module, it is also possible to is further split into multiple submodule。
Embodiment four
Based on the inventive concept same with said method, the embodiment of the present invention four provides a kind of Portal server, and as shown in Figure 8, this Portal server includes:
First receiver module 21, more newly requested for receiving the cookie that terminal sent by message processing apparatus;
Sending module 22, for cookie information corresponding for described terminal is sent to described message processing apparatus, is sent to described terminal by described message processing apparatus by described cookie information;
Second receiver module 23, for receiving the HTTP request carrying described cookie information that described terminal sends;
Control module 24, be used for utilizing described cookie information to control described terminal access network。
Described control module 24, specifically for, after receiving described HTTP request, obtaining described cookie information, and determine that described terminal does not carry out WLAN certification by described cookie information from described HTTP request, accesses network either directly through WLAN。
Wherein, the modules of apparatus of the present invention can be integrated in one, it is also possible to separates and disposes。Above-mentioned module can merge into a module, it is also possible to is further split into multiple submodule。
Through the above description of the embodiments, those skilled in the art is it can be understood that can add the mode of required general hardware platform by software to the present invention and realize, naturally it is also possible to by hardware, but in a lot of situation, the former is embodiment more preferably。Based on such understanding, the part that prior art is contributed by technical scheme substantially in other words can embody with the form of software product, this computer software product is stored in a storage medium, including some instructions with so that a computer equipment (can be personal computer, server, or the network equipment etc.) perform the method described in each embodiment of the present invention。
It will be appreciated by those skilled in the art that accompanying drawing is the schematic diagram of a preferred embodiment, module or flow process in accompanying drawing are not necessarily implemented necessary to the present invention。
It will be appreciated by those skilled in the art that the module in the device in embodiment can describe according to embodiment to carry out being distributed in the device of embodiment, it is also possible to carry out respective change and be disposed other than in one or more devices of the present embodiment。The module of above-described embodiment can merge into a module, it is also possible to is further split into multiple submodule。
The invention described above embodiment sequence number, just to describing, does not represent the quality of embodiment。
The several specific embodiments being only the present invention disclosed above, but, the present invention is not limited to this, and the changes that any person skilled in the art can think of all should fall into protection scope of the present invention。
Claims (9)
1. a Network Access Method, it is characterised in that including:
Terminal monitoring is currently used in the cookie situation accessing network, and before the cookie being currently used in access network expires, it is sent to message processing apparatus by more newly requested for cookie, described message processing apparatus is sent to Portal server by more newly requested for described cookie;
Cookie information corresponding for described terminal is sent to described message processing apparatus by described Portal server, described message processing apparatus described cookie information is sent to described terminal;
Described terminal sends the HTTP request carrying described cookie information to described Portal server, described Portal server utilize described cookie information to control described terminal access network;
Wherein, described message processing apparatus includes sms center。
2. the method for claim 1, it is characterised in that described Portal server utilizes described cookie information to control described terminal access network, including:
Described Portal server, after receiving described HTTP request, obtains described cookie information from described HTTP request, and determines that described terminal does not carry out WLAN certification by described cookie information, accesses network either directly through WLAN。
3. the method as described in any one of claim 1-2, it is characterised in that described message processing apparatus includes sms center;
Described terminal is sent to message processing apparatus by more newly requested for cookie, including: described terminal is sent to described sms center with short message way by more newly requested for described cookie;
Described cookie information is sent to described terminal by described message processing apparatus, including: described cookie information is sent to described terminal with short message way by described sms center。
4. a network access system, it is characterised in that at least include terminal, message processing apparatus and Portal server;Wherein,
Described terminal, it is currently used in the cookie situation accessing network for monitoring, and before the cookie being currently used in access network expires, it is sent to described message processing apparatus by more newly requested for cookie, and receive from cookie information corresponding to the described terminal of described message processing apparatus, and send the HTTP request carrying described cookie information to described Portal server;
Described message processing apparatus, more newly requested for the cookie received from described terminal, and it is sent to described Portal server by more newly requested for described cookie;And, receive the described cookie information from described Portal server, and described cookie information is sent to described terminal;Wherein, described message processing apparatus includes sms center;
Described Portal server, more newly requested for the cookie received from described message processing apparatus, and cookie information corresponding for described terminal is sent to described message processing apparatus;And, receive the HTTP request carrying described cookie information from described terminal, and utilize described cookie information to control described terminal access network。
5. system as claimed in claim 4, it is characterised in that
Described Portal server, is further used for after receiving described HTTP request, obtains described cookie information, and determine that described terminal does not carry out WLAN certification by described cookie information from described HTTP request, accesses network either directly through WLAN。
6. a terminal unit, it is characterised in that including:
First sending module, it is currently used in the cookie situation accessing network for monitoring, and before the cookie being currently used in access network expires, be sent to message processing apparatus by more newly requested for cookie, described message processing apparatus be sent to Portal server by more newly requested for described cookie;
Receiver module, the cookie information corresponding for receiving described terminal that described Portal server returned by described message processing apparatus;
Second sending module, for sending the HTTP request carrying described cookie information to described Portal server, is utilized described cookie information to control described terminal access network by described Portal server;
Wherein, described message processing apparatus includes sms center。
7. terminal unit as claimed in claim 6, it is characterised in that described message processing apparatus includes sms center;
Described first sending module, specifically for being sent to described sms center with short message way by more newly requested for described cookie;
Described receiver module, specifically for receiving the cookie information that described sms center returns with short message way。
8. a Portal server, it is characterised in that including:
First receiver module, for receiving terminal when monitoring is currently used in the cookie situation accessing network, before the cookie being currently used in access network expires, the cookie sent by message processing apparatus is more newly requested;
Sending module, for cookie information corresponding for described terminal is sent to described message processing apparatus, is sent to described terminal by described message processing apparatus by described cookie information;
Second receiver module, for receiving the HTTP request carrying described cookie information that described terminal sends;
Control module, be used for utilizing described cookie information to control described terminal access network;
Wherein, described message processing apparatus includes sms center。
9. Portal server as claimed in claim 8, it is characterised in that
Described control module, specifically for, after receiving described HTTP request, obtaining described cookie information, and determine that described terminal does not carry out WLAN certification by described cookie information from described HTTP request, accesses network either directly through WLAN。
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210004821.3A CN103200159B (en) | 2012-01-04 | 2012-01-04 | A kind of Network Access Method and equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210004821.3A CN103200159B (en) | 2012-01-04 | 2012-01-04 | A kind of Network Access Method and equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103200159A CN103200159A (en) | 2013-07-10 |
| CN103200159B true CN103200159B (en) | 2016-06-22 |
Family
ID=48722522
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210004821.3A Active CN103200159B (en) | 2012-01-04 | 2012-01-04 | A kind of Network Access Method and equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103200159B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP4183173A4 (en) * | 2020-08-20 | 2023-12-27 | Samsung Electronics Co., Ltd. | Improvements in and relating to network slice-specific authentication and authorization (nssaa) |
Families Citing this family (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103442069B (en) * | 2013-08-30 | 2017-06-20 | 江苏立讯方网络信息技术有限公司 | A kind of method that mobile Internet is accessed based on SIM guiding user |
| CN104426660A (en) * | 2013-09-04 | 2015-03-18 | 中兴通讯股份有限公司 | Portal authentication method, BNG (broadband network gateway), Portal server and Portal authentication system |
| US9294920B2 (en) * | 2013-09-21 | 2016-03-22 | Avaya Inc. | Captive portal systems, methods, and devices |
| CN104703186B (en) * | 2013-12-06 | 2018-05-22 | 中国移动通信集团江苏有限公司 | A kind of method, apparatus and system for preventing that account is stolen |
| CN104811462B (en) * | 2014-01-26 | 2018-05-18 | 中国移动通信集团北京有限公司 | A kind of access gateway reorientation method and access gateway |
| CN106803821B (en) * | 2015-11-26 | 2019-12-06 | 中国电信股份有限公司 | Method and system for identifying terminal user identity in WIFI scene |
| CN109660459B (en) * | 2017-10-10 | 2021-12-07 | 中国移动通信集团广东有限公司 | Physical gateway and method for multiplexing IP address |
| CN110445746B (en) * | 2018-05-04 | 2022-01-07 | 腾讯科技(深圳)有限公司 | Cookie obtaining method and device and storage equipment |
| CN110505188B (en) * | 2018-05-18 | 2021-10-22 | 华为技术有限公司 | Terminal authentication method, related equipment and authentication system |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1819518A (en) * | 2006-02-20 | 2006-08-16 | 北京凯威点告网络技术有限公司 | Method for discriminating user identity in information distributing system |
| CN101035031A (en) * | 2007-04-03 | 2007-09-12 | 华为技术有限公司 | Method and device for detecting the number of the shared access host |
| CN101127603A (en) * | 2007-08-16 | 2008-02-20 | 中兴通讯股份有限公司 | A method for single point login of portal website and IMS client |
| US7379980B1 (en) * | 2000-12-21 | 2008-05-27 | At&T Delaware Intellectual Property, Inc. | Cookie management systems and methods |
| CN102196434A (en) * | 2010-03-10 | 2011-09-21 | 中国移动通信集团公司 | Authentication method and system for wireless local area network terminal |
-
2012
- 2012-01-04 CN CN201210004821.3A patent/CN103200159B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7379980B1 (en) * | 2000-12-21 | 2008-05-27 | At&T Delaware Intellectual Property, Inc. | Cookie management systems and methods |
| CN1819518A (en) * | 2006-02-20 | 2006-08-16 | 北京凯威点告网络技术有限公司 | Method for discriminating user identity in information distributing system |
| CN101035031A (en) * | 2007-04-03 | 2007-09-12 | 华为技术有限公司 | Method and device for detecting the number of the shared access host |
| CN101127603A (en) * | 2007-08-16 | 2008-02-20 | 中兴通讯股份有限公司 | A method for single point login of portal website and IMS client |
| CN102196434A (en) * | 2010-03-10 | 2011-09-21 | 中国移动通信集团公司 | Authentication method and system for wireless local area network terminal |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP4183173A4 (en) * | 2020-08-20 | 2023-12-27 | Samsung Electronics Co., Ltd. | Improvements in and relating to network slice-specific authentication and authorization (nssaa) |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103200159A (en) | 2013-07-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103200159B (en) | A kind of Network Access Method and equipment | |
| US8589675B2 (en) | WLAN authentication method by a subscriber identifier sent by a WLAN terminal | |
| EP2039110B1 (en) | Method and system for controlling access to networks | |
| CN101702717B (en) | Method, system and equipment for authenticating Portal | |
| EP3120591B1 (en) | User identifier based device, identity and activity management system | |
| CN105162777B (en) | A kind of wireless network login method and device | |
| CN105027529B (en) | Method and apparatus for verifying user's access to Internet resources | |
| US9549318B2 (en) | System and method for delayed device registration on a network | |
| DK2924944T3 (en) | Presence authentication | |
| WO2006085169A1 (en) | Method and apparatus for using generic authentication architecture procedures in personal computers | |
| CN103746812A (en) | Access authentication method and system | |
| EP1690189B1 (en) | On demand session provisioning of ip flows | |
| US8191128B2 (en) | Systems and methods for controlling access to a public data network from a visited access provider | |
| WO2008030526A2 (en) | Systems and methods for obtaining network access | |
| US20160226849A1 (en) | Portal authentication method, broadband network gateway, portal server and system | |
| EP2890170A1 (en) | Method and system for barcode and link initiated hotspot auto-login in WLANs | |
| CN104936177B (en) | A kind of access authentication method and access authentication system | |
| CN104837134A (en) | Web authentication user registration method, device and system | |
| CN107707560B (en) | Authentication method, system, network access equipment and Portal server | |
| CN106954214B (en) | Electronic device and control method thereof | |
| CN116017448A (en) | Bluetooth authentication method and system based on three-party linkage of software, terminal and server | |
| CN103974251A (en) | Method for automatically authenticating identities for wireless network access | |
| KR20100072973A (en) | Method of access authentication based on policy for wireless network access service | |
| CN101902507B (en) | Method, device and system for distributing addresses | |
| KR101490549B1 (en) | Wireless Internet Access Authentication Method for Web Based Advertisement Service |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |